Unrated severityNVD Advisory· Published Oct 11, 2002· Updated Jun 16, 2026
CVE-2002-0839
CVE-2002-0839
Description
The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service (process kill) or possibly other behaviors that would not normally be allowed, by modifying the parent[].pid and parent[].last_rtime segments in the scoreboard.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*range: >=1.3.0,<1.3.27
- (no CPE)range: < 1.3.27
cpe:2.3:o:debian:debian_linux:2.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:2.2:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
23- archives.neohapsis.com/archives/vulnwatch/2002-q4/0012.htmlnvdBroken LinkPatchVendor Advisory
- distro.conectiva.com.br/atualizacoes/nvdThird Party Advisory
- marc.infonvdMailing ListThird Party Advisory
- marc.infonvdIssue TrackingMailing ListThird Party Advisory
- marc.infonvdIssue TrackingMailing ListThird Party Advisory
- online.securityfocus.com/advisories/4617nvdThird Party AdvisoryVDB Entry
- www.apacheweek.com/issues/02-10-04nvdRelease NotesVendor Advisory
- www.debian.org/security/2002/dsa-187nvdThird Party Advisory
- www.debian.org/security/2002/dsa-188nvdThird Party Advisory
- www.debian.org/security/2002/dsa-195nvdThird Party Advisory
- www.iss.net/security_center/static/10280.phpnvdBroken LinkVendor Advisory
- www.securityfocus.com/bid/5884nvdThird Party AdvisoryVDB Entry
- patches.sgi.com/support/free/security/advisories/20021105-01-InvdBroken Link
- archives.neohapsis.com/archives/bugtraq/2002-10/0195.htmlnvdBroken Link
- archives.neohapsis.com/archives/bugtraq/2002-10/0254.htmlnvdBroken Link
- www.linux-mandrake.com/en/security/2002/MDKSA-2002-068.phpnvdBroken Link
- www.linuxsecurity.com/advisories/other_advisory-2414.htmlnvdBroken Link
- lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/rd00b45b93fda4a5bd013b28587207d0e00f99f6e3308dbb6025f3b01%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3Envd
- lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3Envd
News mentions
0No linked articles in our index yet.